[SHINDIG-1996] OAuth 2.0 Token Response should return 'expires_in' in seconds - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Open
Priority: Major
Resolution: Unresolved
Affects Version/s: 2.5.2
Fix Version/s: None
Component/s: Java
Labels:
None

Description

As per https://tools.ietf.org/html/rfc6749#section-5.1

expires_in
RECOMMENDED. The lifetime in seconds of the access token. For
example, the value "3600" denotes that the access token will
expire in one hour from the time the response was generated.
If omitted, the authorization server SHOULD provide the
expiration time via other means or document the default value.

shindig's OAuth2TokenHandler returns the expires_in field in milliseconds.

Attachments

Activity

People

Assignee:: Andreas Kohn

Reporter:: Andreas Kohn

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 21/Jul/15 13:42

Updated:: 22/Jul/15 09:01